Ok, and where are the recommended characters to disallow? I have tested and I know which characters are going through but I would like to make sure I've included most of the recommended list.
>From: Teresa Raymond <[EMAIL PROTECTED]> > >> Where in the Camel or other resource is the list of characters that >> we don't want people to type in. I'm still collecting all the >> resources I lost from my logic board dying. Thanks in advance. > >When testing data you should ALWAYS test whether the string >contains only the allowed characters or is in the allowed format, >never whether it contains some forbidden characters or contains >something that you do not like. > >You may forget something that happens to be special in your case >and you would open a security hole while thinking you are safe. > >While in the life I prefer "what is not forbidden, is allowed" >in programming it should be the oposite. > >Jenda > >=========== [EMAIL PROTECTED] == http://Jenda.Krynicky.cz ========== >There is a reason for living. There must be. I've seen it somewhere. >It's just that in the mess on my table ... and in my brain >I can't find it. > --- me > >-- >To unsubscribe, e-mail: [EMAIL PROTECTED] >For additional commands, e-mail: [EMAIL PROTECTED] -- ------------------------------- - Teresa Raymond - - Mariposa Net - - http://www.mariposanet.com - ------------------------------- -- -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
